$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/2C8A4BD0E3A311EA849FE735C4F9AE02.roa File: 2C8A4BD0E3A311EA849FE735C4F9AE02.roa (raw, json) Hash identifier: KOYmtxK//A3B+Z/Xwz0yJKA3K6fBc1GlJkbqetAu6JY= Subject key identifier: 25:F2:03:D0:A6:A1:AE:50:7E:8E:7C:59:C7:2B:6D:09:66:4C:2B:74 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 6B64 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/2C8A4BD0E3A311EA849FE735C4F9AE02.roa Signing time: Wed 10 May 2023 16:19:26 +0000 ROA not before: Wed 10 May 2023 16:19:26 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 134903 IP address blocks: 103.210.140.0/22 maxlen: 24 2405:afc0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27492 (0x6b64) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:19:26 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc40e-2bd1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:41:4b:47:cf:fb:0b:43:1f:da:74:bd:99:b9: 85:b6:5d:a4:27:d4:66:c4:6f:7a:02:eb:aa:33:98: 59:db:c8:65:aa:d1:8e:16:a6:9f:1b:e5:c5:e8:54: d9:7f:c7:26:fd:95:56:28:5f:47:b3:9f:e5:ba:c8: 08:cb:6f:fc:1a:4b:2e:a5:b7:28:5d:54:ef:5c:2e: 34:22:53:a7:00:e2:bd:3f:c3:62:18:2d:5d:2c:20: ca:c8:88:60:78:73:eb:e9:fd:20:7b:f5:74:aa:7f: 8f:ef:56:93:f6:47:3c:42:fc:14:b3:5c:88:71:46: 25:9e:5d:a7:e0:17:a1:1d:fb:59:de:f0:63:a9:e8: 85:a4:dd:6c:a5:0e:df:ef:45:ac:fd:9e:00:07:41: d4:39:1d:0c:cb:a8:b9:d2:2f:4a:b3:0f:c7:13:5a: 42:07:c6:56:53:a6:5d:a8:40:5f:89:3d:8d:a7:8c: ce:02:f2:30:c9:6f:7b:3d:47:a8:3f:6a:31:64:0d: 3c:18:a9:09:f1:9e:85:f9:90:0a:6a:82:ce:6e:3a: 88:18:de:8d:e9:23:f5:a3:2e:e8:d6:d5:d7:66:61: 14:3a:f5:aa:cf:00:cc:a1:b8:76:a2:97:c3:6d:7b: 31:a3:3b:9e:a3:98:84:b3:a9:df:d7:a1:24:58:96: 24:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:F2:03:D0:A6:A1:AE:50:7E:8E:7C:59:C7:2B:6D:09:66:4C:2B:74 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/2C8A4BD0E3A311EA849FE735C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.210.140.0/22 IPv6: 2405:afc0::/32 Signature Algorithm: sha256WithRSAEncryption 9d:45:c2:60:ac:a3:a1:33:a7:7a:50:35:3d:95:7e:47:d7:00: d1:35:5b:8c:bc:c8:a4:61:10:6d:64:6f:d7:57:9a:5f:42:46: 41:6f:0a:5f:af:2c:27:38:eb:e2:66:59:b5:e7:ba:2c:fe:09: 22:6e:54:b6:9c:e7:7d:53:2f:f8:13:25:b1:86:f5:bd:31:c2: f4:d6:ca:7e:43:54:6d:05:d0:ff:f0:c4:0d:d9:85:f8:94:e3: 3e:42:2b:78:90:6e:68:d7:49:79:aa:09:1d:15:81:86:07:29: d6:13:9a:f5:f6:b9:da:e1:ff:8d:05:cf:e3:ba:35:58:69:18: a8:17:1f:a1:6c:52:ba:9a:37:8d:f9:af:68:a4:46:ec:74:a6: 84:88:5d:2b:3f:3c:9c:56:7f:82:de:92:2a:20:6d:22:5d:a8: 58:62:59:6b:e1:1e:91:be:cd:8a:23:9c:26:c1:bc:f8:98:24: 68:df:7b:46:a1:cf:06:5b:72:96:75:8d:90:a5:65:f6:d4:e5: 0a:c1:88:00:f7:4c:df:4c:41:11:d4:b8:9d:bd:7f:8b:50:94: 5b:73:6c:93:59:06:84:03:dc:96:58:06:dc:ed:af:f4:e0:d0: 75:b8:a4:26:86:23:16:cf:4e:a3:19:cb:50:fe:37:76:36:9e: 9b:42:5e:c2 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICa2QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTYxOTI2WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzQwZS0yYmQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwEFLR8/7C0Mf2nS9mbmFtl2kJ9RmxG96AuuqM5hZ28hlqtGOFqafG+XF6FTZ f8cm/ZVWKF9Hs5/lusgIy2/8GksupbcoXVTvXC40IlOnAOK9P8NiGC1dLCDKyIhg eHPr6f0ge/V0qn+P71aT9kc8QvwUs1yIcUYlnl2n4BehHftZ3vBjqeiFpN1spQ7f 70Ws/Z4AB0HUOR0My6i50i9Ksw/HE1pCB8ZWU6ZdqEBfiT2Np4zOAvIwyW97PUeo P2oxZA08GKkJ8Z6F+ZAKaoLObjqIGN6N6SP1oy7o1tXXZmEUOvWqzwDMobh2opfD bXsxozueo5iEs6nf16EkWJYkFQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFCXyA9Cm oa5Qfo58WccrbQlmTCt0MB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvMkM4QTRCRDBF M0EzMTFFQTg0OUZFNzM1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJn0owwDQQCAAIwBwMFACQFr8AwDQYJKoZIhvcNAQELBQAD ggEBAJ1FwmCso6Ezp3pQNT2VfkfXANE1W4y8yKRhEG1kb9dXml9CRkFvCl+vLCc4 6+JmWbXnuiz+CSJuVLac531TL/gTJbGG9b0xwvTWyn5DVG0F0P/wxA3ZhfiU4z5C K3iQbmjXSXmqCR0VgYYHKdYTmvX2udrh/40Fz+O6NVhpGKgXH6FsUrqaN435r2ik Rux0poSIXSs/PJxWf4LekiogbSJdqFhiWWvhHpG+zYojnCbBvPiYJGjfe0ahzwZb cpZ1jZClZfbU5QrBiAD3TN9MQRHUuJ29f4tQlFtzbJNZBoQD3JZYBtztr/Tg0HW4 pCaGIxbPTqMZy1D+N3Y2nptCXsI= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:28 2024 by rpki-client on console-ams.rpki-client.org